lp://qastaging/~peter-pearse/ubuntu/oneiric/wget/prop001
- Get this branch:
- bzr branch lp://qastaging/~peter-pearse/ubuntu/oneiric/wget/prop001
Branch merges
Branch information
- Owner:
- Peter Pearse
- Status:
- Development
Recent revisions
- 21. By Peter Pearse
-
Save & restore patched files to allow multiple builds in same source tree e.g. for cross builds.
- 19. By Steve Langasek
-
Mark wget Multi-Arch: foreign, so packages that aren't of the same arch
can depend on it. - 18. By Lorenzo De Liso
-
* Merge from debian unstable (LP: #403070), remaining changes:
- Add wget-udeb to ship wget.gnu as alternative to busybox wget
implementation.
- Keep build dependencies in main:
+ debian/control: remove info2man build-dep
+ debian/patches/ 00list: disable wget-infopod_ generated_ manpage. dpatch
- Depend on libssl-dev 0.9.8k-7ubuntu4 (LP: #503339)
* Dropped changes:
- SECURITY UPDATE: arbitrary file overwrite via 3xx redirect
+ debian/patches/ CVE-2010- 2252.dpatch: don't use server names in
doc/wget.texi, src/{http. *,init. c,main. c,options. h,retr. c}.
+ This update changes previous behaviour by ignoring the filename
supplied by the server during redirects. To re-enable previous
behaviour, see the new --trust-server- names option.
+ CVE-2010-2252: fixed in debian - 17. By Marc Deslauriers
-
* SECURITY UPDATE: arbitrary file overwrite via 3xx redirect
- debian/patches/ CVE-2010- 2252.dpatch: don't use server names in
doc/wget.texi, src/{http.*,init. c,main. c,options. h,retr. c}.
- This update changes previous behaviour by ignoring the filename
supplied by the server during redirects. To re-enable previous
behaviour, see the new --trust-server- names option.
- CVE-2010-2252 - 15. By Colin Watson
-
Rebuild against libssl-dev 0.9.8k-7ubuntu4 to fix wget-udeb dependencies
(LP: #503339). - 14. By Marc Deslauriers
-
* Merge from debian testing, remaining changes:
- Add wget-udeb to ship wget.gnu as alternative to busybox wget
implementation.
* Keep build dependencies in main:
- debian/control: remove info2man build-dep
- debian/patches/ 00list: disable wget-infopod_ generated_ manpage. dpatch - 13. By Marc Deslauriers
-
* SECURITY UPDATE: SSL certificate bypass with NULL CN byte.
- debian/patches/ security- CVE-2009- 3490.dpatch: make sure there is no
NULL in the common-name in src/openssl.c.
- CVE-2009-3490
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp://qastaging/ubuntu/oneiric/wget